A few conceptual question about dnssec.
dE .
de.techno at gmail.com
Sat Mar 3 07:23:36 UTC 2012
On 03/03/12 12:47, dE . wrote:
> On 02/18/12 00:36, Gaurav kansal wrote:
>>
>> Firstly, where do we get the public key for the DS records?
>>
>> Can you clarify your question???
>>
>>
>>
>> Second, why do I get multiple DS records as response? --
>>
>> You will always get a 2 DS Records in response. One for SHA-1 and
>> second for SHA-256.
>>
>
> I was reading the RFCs, but according to that, there's no provision of
> SHA-256. According to RFC 4034, 1 means MD5 and 2 means Diffie-Hellman
> (appendix A.1)
Oops... sorry about that, got it. It was A.2
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20120303/1d35bc80/attachment.html>
More information about the bind-users
mailing list